#------------------------------------------------------------------------
# Version 2.14 - 4th October 2004
#------------------------------------------------------------------------
* Applied patch from Harald Joerg to prevent ttree from spewing warnings
when copying files.
* Applied a patch from Paul Orrock to fix a couple of missing errors in
ttree.
* Commented out line 797 of Template::Directive.pm which serves no
purpose and generates a warning.
* Applied a patch from Mark Fowler to add support for Unicode to TT.
* Changed the fourth argument to process() to accept named IO layers for
binmode, e.g. process($in, $vars, $out, binmode => ':utf8');
* Added full range of command line options to tpage.
* Applied patches from Tosh Cooey, Simon Wilcox and Kenny Gatdula to fix
XML::Simple to allow direct access to XMLin() and XMLout() methods.
* Fixed a bug in the 'callers' list maintained by a template component
which was failing to remove callers from the list after processing.
* Applied a doc patch from Dave Cash documenting caller and callers.
#------------------------------------------------------------------------
# Version 2.13 - 30th January 2004
#------------------------------------------------------------------------
* Applied patch from Dave Cash to add 'caller' and 'callers' to
'component', see
* Applied patch from Dylan William Hardison to ttree which prevents
dependencies from interfering with files that are copied. See
#------------------------------------------------------------------------
# Version 2.12a - 13th January 2004 ## DEVELOPER RELEASE ##
#------------------------------------------------------------------------
* Fixed the bug in test 25 of t/date.t, hopefully for good this time,
thanks to the efforts of Steve Peters.
* Added the FILE_INFO option to Template::Parser. Enabled by default,
this can be set to 0 to prevent the parser from adding file and line
info to the generated Perl file. Don't ask me why - Autrijus wanted
it (which probably means he's up to something twisted again :-).
#------------------------------------------------------------------------
# Version 2.12 - 12th January 2004
#------------------------------------------------------------------------
* Added the module_version() method to Template::Base to report the
version number of a module. Added some tests to t/base.t.
* Added the --template_module option to ttree, to allow the user to
specify a template processing module other than the default 'Template'
to be used. Also changed various print statements to send all
verbose output to stdout, whereas previously it was split across stdout
and stderr.
#------------------------------------------------------------------------
# Version 2.11b - 7th January 2004 ## DEVELOPER RELEASE ##
#------------------------------------------------------------------------
* Applied patch from Myk Melez to ensure the 'component' variable
remains correctly set to the current templates.
#------------------------------------------------------------------------
# Version 2.11a - 6th January 2004 ## DEVELOPER RELEASE ##
#------------------------------------------------------------------------
* Fixed bug in t/date.t and corrected version number of
Template::Grammar.
#------------------------------------------------------------------------
# Version 2.11 - 6th January 2004
#------------------------------------------------------------------------
* Bumped version number and updated documentation for release.
#------------------------------------------------------------------------
# Version 2.10b - 2nd December 2003 ## DEVELOPER RELEASE ##
#------------------------------------------------------------------------
* Changed the Template::Document process() method to pass itself
to the context visit() method when it calls it. Similarly, changed
the context visit() method to expect it. This is useful when
subclassing the context but shouldn't have any other effect.
* Modified parser to add the file name and line number of the source
template to generated Perl code. This provides useful information
when warnings and errors are generated by Perl at runtime. Added
the t/fileline.t script to test it.
#------------------------------------------------------------------------
# Version 2.10a - 9th October 2003 ## DEVELOPER RELEASE ##
#------------------------------------------------------------------------
* Applied two patches from Axel Gerstmair to fix bugs in Makefile.PL
and t/date.t.
* Applied patch from Jim Cromie to t/autoform.t to skip tests on all
versions of Perl from 5.8.0 onwards.
* Changed $OUTPUT in Template::Directive to be a package variable,
allowing it to be re-defined to permit a flushed output hack.
* Applied a patch from Darren to the 'item' hash vmethod to protect
against accessing private variables (prefixed '.' or '_')
* Applied a patch from Ivan Adzhubey to template/splash/frame.
* Applied a patch from Bryce Harrington to add the absolute and
relative options to ttree. Also applied a patch from Mark Anderson
to add the 'template_debug'. Removed the old debug option which was
as good as useless.
* Applied another patch from Mark to push files named on the command
line through the process_file() sub to ensure that various options
like accept checking, pemission preserving and copy processing (but
not modification time) are applied.
* Applied a variation of yet another ttree patch from Mark to add the
'suffix' option for changing the suffix of output files created.
* Applied a variation of a patch from Dylan William Hardison which
adds the 'depend' and 'depend_file' options to ttree.
More specifically, this lets Mozilla NSS be used by other programs.
Also make the pkgconfig substitutions happen at post-build time, so that
the right rpaths are added to the mozilla-nspr.pc file (which is filled
in during the build).
Bump PKGREVISION to 1 for both packages. Ok'ed by taya@, the maintainer.
Changes since 0.5.3:
* Finally added a menu option to remove a single item.
Sorry that it took so long! (Lars Lindner)
* Item modification times are now correctly converted to the local
timezone. (Nathan Conrad)
* The help feeds are now (almost) normal subscriptions
and can be removed and modified. The only remaining
difference is that the version in the URL is updated
automatically and that old items are dropped. This
also removes the special icon of the help folder.
(Lars Lindner)
* Removed the ugly unavailable icon. Now the GNOME stock
icon for the error dialog is used. (Lars Lindner)
* Added a default feed list that is installed upon the
first program start. Added a Spanish localized version
by Topopardo. (Lars Lindner)
* Added support for reading subscriptions URLs from
a named pipe (~/.liferea/new_subscription) to allow
external programs to add feeds. (Lars Lindner)
* Itemlist sorting order is now saved on a per-feed basis.
(Nathan Conrad)
* Experimental vfolder implementation. When you do a search
you now can save the search result as a vfolder. There
is still a lot to do but just play around and write us
your opinion! (Lars Lindner)
* Fixed a bug that caused a crash when right clicking the
feed list in filtered mode. (Lars Lindner)
* Fixed a problem with the session managment registering
which prevented the usage of the Mozilla browser module.
(Nathan Conrad)
* Iconification state is saved between sessions. (Nathan Conrad)
* URLs are now stripped of leading and trailing
whitespace. (Nathan Conrad)
* Update of the Italian translation (Dario Conigliaro)
* Fixed a big memory leak. (Lars Lindner)
* Some fixes in the RPM spec file (Noa Resare)
* Update of the Czech translation (Juraj Kubelka)
* Updated RPM spec file. (Daniel Resare)
* Update of the French translation (Vincent Lefevre)
* Fixed HTTP authentication problem with case sensitivy
in the HTTP headers. (Nathan Conrad)
* Fixed gaim strings in the configure output reported by
Russell Kaiser. (Nathan Conrad)
* Corrected dependency for libxml2 from 2.0 to 2.4.1 for the
configure script and allow older versions of gconf. (Nathan
Conrad)
* Removed accidental usage of libxml2 2.6 usage. Liferea should
now work with libxml2 2.4.1 or newer. (Nathan Conrad)
* Fixed a mistake in the German translation. (Lars Lindner)
* Fixed a bug that prevented RSS content:encoded tags
to be parsed. (Lars Lindner)
- mod_rewrite: Fix query string handling for proxied URLs. PR 14518.
[michael teitler <michael.teitler cetelem.fr>,
Jan Kratochvil <rcpt-dev.AT.httpd.apache.org jankratochvil.net>]
- mod_rewrite: Fix 0 bytes write into random memory position.
PR 31036. [André Malo]
- mod_digest: Fix nonce string calculation since 1.3.31 which
would force re-authentication for every connection if
AuthDigestRealmSeed was not configured. PR 30920. [Joe Orton]
- Trigger an error when a LoadModule directive attempts to
load a module which is built-in. This is a common error when
switching from a DSO build to a static build.
[Jeff Trawick, Geoffrey Young]
- Fix trivial bug in mod_log_forensic that caused the child
to seg fault when certain invalid requests were fired at it with
forensic logging is enabled. PR 29313.
[Will Slater <Will Slater orbisuk.com>]
- Fix memory leak in the cache handling of mod_rewrite. PR 27862.
[chunyan sheng <shengperson yahoo.com>, André Malo]
- mod_rewrite no longer confuses the RewriteMap caches if
different maps defined in different virtual hosts use the
same map name. PR 26462. [André Malo]
- mod_setenvif: Remove "support" for Remote_User variable which
never worked at all. PR 25725. [André Malo]
- mod_usertrack: Escape the cookie name before pasting into the
regexp. [André Malo]
- Win32: Improve error reporting after a failed attempt to spawn a
piped log process or rewrite map process. [Jeff Trawick]
- SECURITY: CAN-2004-0492 (cve.mitre.org)
Reject responses from a remote server if sent an invalid (negative)
Content-Length. [Mark Cox]
- Fix a bunch of cases where the return code of the regex compiler
was not checked properly. This affects mod_usertrack and
core. PR 28218. [André Malo]
- No longer breaks mod_dav, frontpage and others. Repair a patch
in 1.3.31 which prevented discarding the request body for requests
that will be keptalive but are not currently keptalive. PR 29237.
[Jim Jagielski, Rasmus Lerdorf]
- COMPATIBILITY: Added new compile-time flag: UCN_OFF_HONOR_PHYSICAL_PORT.
It controls how UseCanonicalName Off determines the port value if
the client doesn't provide one in the Host header. If defined during
compilation, UseCanonicalName Off will use the physical port number to
generate the canonical name. If not defined, it tries the current Port
value followed by the default port for the current scheme.
[Jim Jagielski]
* Fixes:
- Check for curl-7.11.1 or greater to avoid a hang during login (Todd).
- Patch a leak and icon-sizing problem in the recent files menu (Todd).
* Improvements:
- Update build system to automake-1.7 (Todd).
- Sort USE_* section alphabetically.
- Add explicit run dependency on glib2 (because of gmodule).
- Sort other dependencies alphabetically.
- Register liferea.schemas into the GConf2 database (and add them to the
PLIST!).
- With OpenSSL 0.9.7, prevent session resumption during a
renegotiation to force the client to negotiate a new (and
acceptable to mod_ssl) cipher suite. Additionally, ensure
that a correct cipher suite has been negotiated afterwards
(CAN-2004-0885).
- Fixed more printf(3) style format string bugs (not security
related) which could crash the server if mod_ssl's trace
or debug log level is enabled.
cp -r copies symlinks as symlinks (which caused
files to be missing in install).
Hopefully, this is portable. I tested under NetBSD and with coreutils.
And I brought this up on tech-pkg in July.
* fixed crash occuring in autosave after paste
* expose api version in pkgconfig file
* more line breaking touches
* fixed embedded widgets not shown problem
Unfortunately, guile{,14}/buildlink3.mk directly includes it, and I don't
know which dependencies actually need libltdl, so it was a recursive bump.
Hopefully this recursive inclusion can be ripped out of
guile{,14}/buildlink3.mk at some point and bubble down to dependencies that
actually use libltdl, avoiding this headache in the future....
Bug fixes
* Add a list of printers to the print dialog. Fix printing
in several recent ditributions. (Marco)
* Remove duplicate AC_PROG_INTLTOOL (Christian) [#155028]
* Fix a crash when rebuilding bookmarks menu (Christian) [#154805]
This includes security problem with SNMP support which enabled by default.
<http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities>
* pkgsrc changes:
- Don't use PKGNAME within DIST_SUBDIR. Instead, date based DIST_STAMP.
This change prevent extra DIST_SUBDIR change asked by kim@.
- Remove setproctitle(3) hack for dnsserver helper program since use of
dnsserver itself is problematic with huge size of squid process.
* Changes to squid-2.5.STABLE7 (11 Oct 2004)
- [Medium] No objects cached in ufs cache_dir type in some
configurations. Issue introduced in 2.5.STABLE6 by the patch for
Bug #676. (Bug #1011)
- [Minor] LDAP helpers update to correct LDAP connection management
and add support for literal password compare instead of binding
- [Minor] A large number of queued DNS lookups for the same domain
(Bug #852)
- [Cosmetic] request_header_max_size configuration partly ignored
(Bug #899)
- [Minor] Partial hit results in TCP_HIT, not TCP_MISS. (Bug #1001)
- Bug #1012: [Cosmetic] HEAD requests may return stale information
(Bug #1012)
- [Cosmetic] Warn if cache_dir ufs can not create files. (Bug #918)
- [Minor] case insensitive authentication (Bug #431)
- [Cosmetic] Add delay pools information to active_requests. (Bug
#882)
- [Minor] Apparent memory leak in client_db (Bug #833)
- [Minor] NTLM authentication truncated causing failures. (Bug
#1016)
- [Cosmetic] Grammatical corrections in squid.conf.default
- [Cosmetic] Unknown %X errorpage codes incorrectly quoted. (Bug
#1030)
- [Medium] Segfaults and other strange crashes when using heap
policies. (Bug #1009)
- [Minor] Supplementary group memberships not set (Bug #1021)
- [Cosmetic] ERR_TOO_BIG Portugese translation
- [Minor] external_acl does not handle newlines (Bug #1038)
- [Major] NTLM authentication denial of service when using msnt_auth
or fake_auth (Bug #1045)
- [Medium] Memory leaks when using NTLM authentication without
challenge reuse. (Bug #994)
- [Minor] Temporary NTLM memory leak with challenge reuse enabled
(Bug #910)
- [Minor] assertion failed: "n_ufs_dirs <=
Config.cacheSwap.n_configured". (Bug #1053)
- [Minor] Segfault in authenticateDigestHandleReply. (Bug #1031)
- [Minor] acl time fails to parse multiple time specifications
(Bug #1060)
- [Minor] cachemgr config dumps mixed up Range and Request-Range
headers in http_header_access & replace directives. (Bug #1056)
- [Minor] Content-Disposition added as a well known header (Bug #961)
- [Cosmetic] Don't warn about arp acls not being supported on FreeBSD
(Bug #1074)
- [Cosmetic] Limit internal send/receive buffer sizes (Bug #1075)
- [Medium] New acl types to match arbitrary HTTP headers. In addition
the http_header_access & replace directivess now support arbitrary
headers and not only the well known ones. (Bug #961)
- [Cosmetic] ncsa_auth now accepts Window formatted password files
(Bug #1078)
- [Cosmetic] Support the --program-prefix/suffix options or other
configure program name transforms (Bug #1019)
- [Minor] Fix race condition in CONNECT and also handle aborts of
CONNECT requests in a more graceful manner. (Bug #859)
- [Minor] New balance_on_multiple_ip directive to work around certain
broken load balancers and optimized ipcache on reload requests
(Bug #1058)
- [Medium] New reply_header_max_size directive (Bug #874)
- [Minor] Suspected instability on aborted PUT/POST requests (Bug #1089)
- [Security] SNMP Denial of Service fix (CAN-2004-0918)
Changes:
* Quanta Plus
o VPL: enable VPL on KDE 3.3.x
o show (again) the full filename in a tooltip
o don't crash if the preview widget is closed with a JavaScript command
from the code itself
o possible crash on startup fixed
o don't try to autofill a closing tag for non-xml tags
o when opening a Quanta 3.2 project set the upload status of the files
to "When Modified" not to "Never"
o when adding files to a project, use the upload status of the parent
directory for the newly added file
o fix the Save As.. behavior (it defaulted to some strange directories,
depending on the active treeview, selected directory, etc.)
o update the modified status text/icon when using Save All
o always find the right action to edit, even if there are more actions
with the same user visible name
o don't change the template description if writing to the .dirinfo file
fails (usually for global templates)
o fix creation of new template directories (template type was stored
incorrectly)
o display the user-readable template type in every dialog
o fix the Konqueror launch in meinproc.kmdr
o fix open dialog in checkxml.kmdr: use the the folder selection dialog
to select folders
o improvement: don't show the project toolbar when no project is loaded
o improvement: support loading of more than one toolbar at a time
o improvement: don't ask for toolbar saving if the toolbar names was
modified by Quanta to add (1), (2), etc. at the end
o improvement: disable the Quanta Template page in properties if you
don't have writing rights to the directory
o improvement: show the user-readable template description for every
template file, not just the directories.
o improvement: don't allow to change the template type in the properties
of a file as it's valid per-directory.
* Kommander
o output from ExecButton wasn't sent to standard output
* KLinkStatus
o enable the hide toolbar menu item in the toolbar context menu (and
don't crash with KDE 3.3.0 when you right click on the toolbar)
under ${PREFIX} instead of being an absolute path.
So fix the references using RCD_SCRIPTS_EXAMPLEDIR to be
${PREFIX}/${RCD_SCRIPTS_EXAMPLEDIR}.
This should have no changes to use before.
Please note that the MESSAGE files in most cases are wrong in the
first place. We have automated mechanisms and could have an automated
message for explaining rc.d script usage. (This is something to do!)
Also, work around a horrible interaction with the gzip in NetBSD
2.0 (at least RC4). If gzip is used in a pipeline the tarfile
fails to extract (PR bin/27228)
Changes since 5.0.27:
General
fix 30239: Updated IIS how-to to link to Wiki page with
instrutions for IIS 5 and IIS 6 configurations. (yoavs)
fix 30238: Replaced isapi_redirector.dll isapi_redirect.dll
in installation script for consistency. (yoavs)
fix 29584: Enhanced and clarified JNDI documentation.
(yoavs)
fix 30245: Corrected Connector documentation to list
"address" as a common attribute. (yoavs)
fix 29826: Modified setclasspath.bat exit code to 1.
(yoavs)
update Updated status page, mostly rewritten. (yoavs)
update Updated Jakarta-Commons dependencies: BeanUtils to 1.7.0,
Collections to 3.1. (yoavs)
update Removed classic compiler directives from Ant build, as we
use modern anyways. (yoavs)
update Modified RELEASE-PLAN-5.0.html to indicate status given
start of work on Tomcat 5.next. (yoavs)
update Added command lines utilities version.sh, version.bat to
let you know what version is installed. (funkman)
Catalina
30602: Subject is not available during the first call
fix to the servlet which use the basic authentication
(jfarcand)
fix 29831: Added support for Boolean property to
BeanFactory. (yoavs)
fix 28875: Made ErrorReportValve use UTF-8 encoding by
default. (yoavs)
fix 30325: Only set CATALINA_HOME if not already set (in
bin/catalina.sh). (yoavs)
fix 30144: Made SSIServlet check resource MimeType before
using text/html and UTF-8 default. (yoavs)
29406: Made JAASRealm configurable as to whether it
fix should use the context ClassLoader or the default
ClassLoader by adding a useContextClassLoader boolean
attribute. (yoavs)
If ServletResponse.getWriter() is called and no char
encoding has been specified, set response char encoding to
fix default (ISO-8859-1) so that it is reflected in
getContentType() and Content-Type header, as required by
the Servlet Spec (Bugtraq 6152759) (luehe)
fix 29869: Better JMX/JSR77 support in StandardContext and
StandardWrapper. (remm)
update Fixed broken link to JK documenration from AJP Connector
reference page. (yoavs)
fix 30587: Typo in ExtendedAccessLogValve. (yoavs)
fix 30561: Broken restart of NamingService. (yoavs)
fix 29668: NPE in HostConfig, directory created for
deployed WAR instead of xml file. (yoavs)
fix 30179: Improved Bootstrap catalina.properties
handling. (yoavs)
fix 30762: Servlet#destroy was called before
contextDestroyed. (yoavs)
fix 30650: Added explicit comments on session equals()
implementation. (yoavs)
Coyote
fix 30770: Check that the browser actually sent a user-agent
header before using it. (billbarker)
Default charset not included in Content-Type response header
fix if no char encoding was specified (see Bugtraq 6152759).
(luehe)
Jasper
fix 29971: Commented out page directive is parsed. (luehe)
fix 30067: 'Scripting elements are disallowed here' exception
behind scriptless tag. (luehe)
fix 30073: NPE when compiling .jspx with broken xml format in
jspcmode. (luehe)
fix 30291: Smap for a tag should not include its body.
(kinman)
fix 30289: Incorrect Smap for multiple line java expression.
(kinman)
Cluster
Webapps
fix 29779: Admin/Examples SetCharacterEncodingFilter wrong
package. (yoavs)
fix 30354: manager-howto.xml used wrong Ant task. (yoavs)
- Works with Mozilla 1.4 through 1.8a2 and trunk
- Support printing with Xprint
- Get rid of the startup script; you need to update your scripts
if you have been using galeon-bin directly
- Add saved files in recent-files list for easy access
- Add support for vfolders of bookmarks.
- Restore the 'Reload Frame' context menu item
- Add progress dialog when printing.
- Don't copy the history of the old tab, when creating an
unrelated new tab
- Support the new GNOME 2.8 mime type system
- lots of other bug fixes
Also include fix for http://bugzilla.gnome.org/show_bug.cgi?id=153693
in the process. (More information on tech-pkg.)
Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and
installing .la files.
Bump PKGREVISION (only) of all packages depending directly on the above
via a buildlink3 include.
Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr,
.ko, ja.euc-jp, and .ja files.
I don't know when these were added.
Bump PKGREVISION because now package has several more files.
Also added comment to www/apache2/Makefile.common to remind to
update checksum in devel/apr also.
No actual devel/apr changes seen.
Also removed www/apache2/patches/patch-ab because it is identical to
fix for security in new version.
Changes with Apache 2.0.52
*) Use HTML 2.0 <hr> for error pages. PR 30732 [André Malo]
*) Fix the global mutex crash when the global mutex is never allocated
due to disabled/empty caches. [Jess Holle <jessh ptc.com>]
*) Fix a segfault in the LDAP cache when it is configured switched
off. [Jess Holle <jessh ptc.com>]
*) SECURITY: CAN-2004-0811 (cve.mitre.org)
Fix merging of the Satisfy directive, which was applied to
the surrounding context and could allow access despite configured
authentication. PR 31315. [Rici Lake <rici ricilake.net>]
*) Fix the handling of URIs containing %2F when AllowEncodedSlashes
is enabled. Previously, such urls would still be rejected.
[Jeff Trawick, Bill Stoddard]
*) mod_mem_cache: Fixed race condition causing segfault because of memory being
freed twice, or reused after being freed.
[J. Clar, W. Stoddard, G. Ames]
*) Add -l option to rotatelogs to let it use local time rather than
UTC. PR 24417. [Ken Coar, Uli Zappe <uli ritual.org>]
*) mod_log_config: Fix a bug which prevented request completion time
from being logged for I_INSIST_ON_EXTRA_CYCLES_FOR_CLF_COMPLIANCE
processing. PR 29696. [Alois Treindl <alois astro.ch>]
